"Access Restrictions" change to "Access Policy"

Similar Messages

• Access Restriction shuts down access to all computers

  I have set up access restriction times for my son (we have wireless access for all systems).  I use the MAC address on his systems. Xbox, Kindle Fire and his Laptop. 
  The MAC address are Correct. Here is the problem:
  I set the "allow" and times from 6pm - 11:00 pm (while on xmas vacation) - the system works for a while he is shut off as i would like but....
  After a period of time the entire house goes off line. I have to reboot the power on e2000 router and then disable the access restrictions. System then works. Problem is repeatable. What is the deal. I have updated firmware already. Otherwise the system works great. Never dies. Just when i set access restricions for a SPECIFIC time it kills entiore houese. BTW i can deny him outright 24/7 and the system idsables his access fine. Its just when i set specific times. I am very frustrated.
  Solved!
  Go to Solution.

  Kindly double check on this article the settings you've set on the router especially for the policies and its respective time restrictions however if it does the same thing, reset the router for an hour then reconfigure it. 
  Setting up Access Restrictions on a Linksys router using the classic web-based interface
  http://homekb.cisco.com/Cisco2/ukp.aspx?pid=80&vw=1&articleid=4041

• WRT160N V3 router ignores MAC address Access Restrictions, Filtering policies

  I have added a list of 2 MAC addresses in the Access Restrictions for the access policy #1 and enabled it with Allow policy.  But one of my PC's MAC address which is not on the list of access policy #1 still can access the internet and ping websites.  I tried to add a Deny policy in 2nd policy for this PC MAC address and then it can not ping websites anymore.
  The problem is why my PC with a MAC address not on the list of Allow Policy #1 can access the internet? It seems the router Access Restrictions don't work well.

  I've already added Deny rule (blocking all LAN IPs) to all computers accessing my network in Access Restrictions Policy #1 but I leave one PC left to access the router web configuration.
  Then in Acess Restrictions Policy #2, I added an Allow rule to one of my PC's MAC addresses (and its IP too) but the PC can not access internet and ping websites. It looks like the allow rule in policy #2 doesn't overwrite the Deny rule in Policy #1.

• Setting time access restrictions

  I'd like to use time access restrictions to allow access from 7AM to 1AM; but software won't allow.  Am I missing something or is it that inflexible?  I used to be able to do this without a problem with my Cisco router.

  Did you try this?
  Develop one rule for access everyday between 7 AM and 11:59 PM
  Develop a second rule for access everyday between 12:00 AM and 1:00 AM
  Works fine. There will be no break in the connection.

• Setup more than one policy in one day using Access Restriction

  Anyone can tell me how to set up two policys in one day using Access Restriction ?
  For example:
  For Weekdays, before 6pm, no restriction to use internet. after 6pm, internet ok, but certain web site or ports need to be blocked.
  I can set up policy for after 6pm but then before 6pm, the router consider no-internet access period.
  Any advise ?

  what you just need to do is to set the policy to allow from 6PM upto the time you wanted your router to give internet access... and just set the status to enable.. type in the LAN mac adress of your router in the edit PC list, then save the settings
  "a helping hand in a community makes the world a universe"

• Access Restriction - Internet Connection Policy (between two times)

  I want to say something about the Access Restriction.
  I set the policy for allow internet connection for one of my LAN PC's. For example, I set the policy to ALLOW internet connection EVERY DAY  from 8:00PM to 10:00PM. Starting with 10M internet connection stops. BUT, after a few minutes I do a power circle (turn OFF and turn ON the router) and I have internet connection again. For me, allowing internet connection from 8:00 PM to 10:00 PM means  to have internet connection ONLY BETWEEN THIS HOURS, not before and not after.
  In my opinion, this is the same situation with two DENY policies for internet connection, one from 12:00 AM to 8:00 PM and other from 10:00 PM to 11:55 PM (for the same PC, of course).
  Why POWER CIRCLE broken this policies ?
  ps - sorry for my English.

  @sunwatcher,
  If I set a policy for my little boy PCs ... for allowing internet connection from 4:00PM to 6:00PM (for example) ... after 6:00 PM internet connection stops and he turn OFF and turn ON the router (power circle)  and after that he have internet connection, from then for a long time ...
  I am from Romania, and I set time zone on GMT +2 (Bucharest time zone)
  I insist with this problem because I want for him to use internet only between two times. Outside this time frame I want him to do their homework.

• Access restriction policy

  I own a e2000 router with the latest firmware. Set up access restriction policy for the mobile devices from my children. Deny policy based on Mac adress. Sometimes it works en sometimes it won' t work. It seems that my children keep using for instance whatssapp busy that the internet connections keeps open despite the policy. Does anyone know a solution for this?
  kind regards,
  cees

  Thanks Jake,
  Ik know that factory reset is possible via the webinterface. My quenstion was if it is possible to do a scheduled reboot with a option in the firmware? Indeed the time-zone is important. I checked this.
  Does anybody know if access restriction policy works on a live internet connection? For example: my daughter uses her smartphone with Facebook and she uses it from 16:00 tot 17:00 hour and the policy is that at 16:30 it must be blocked? Or can the policy only work on a connection when it starts up (and then checks the time in the policy to know if a restriction is possible.
  cheers

• WRT160Nv3 problem with blocking traffic using Access Restrictions

  Hi.
  I want something quite simple. Block Youtube. I go into "Access Restrictions", choose a name for policy 1, enable it, choose the pc from the pc list, but then...
  if a click Deny, all other options will be disabled (greyed out, can't click nor write on them).
  Therefore, I can't put the urls I want (youtube).
  I tried writing the url with "allow" and then change it to "deny" but it will block ALL traffic.
  No good.
  So, how do I make a new policy just to block this one URL?
  Is it normal that when I click and choose "Deny" everything gets disabled afterwards?
  Thanks in advance.
  Regards,
  Leo
  Solved!
  Go to Solution.

  for internet access policy DENY means to restrict internet access during specified days and hours. this will block ALL internet traffic for the said schedule. website blocking by URL, blocking by means of keyword and blocking applications would then be NOT AVAILABLE as the computers would not have internet access to begin with if you have such a policy disabled.
  for your case, you may want to try to set restriction to ALLOW internet access then specify youtube.com under Website Blocking by URL. this would allow computers to have access to the internet all the time (if you have the schedule set to EVERYDAY) or during specific days and hours but NOT have access to youtube.

• WRT160N Access Restrictions

  I have a WRT160N version 1 running Firmware Version: v1.02.2.  It operates very smoothly and reliability but I cannot seem to get Access Restrictions working.  I get the dropdown of 1 () through 10() for the Access policy but after I name it in the "Enter Policy Name:" field, I get an error that says: "You must input a Service Name."  I honestly don't know what it is asking.  Is there some other field that I need to fill out before Access Restrictions will work?
  Just a bit more info:  I am running WEP 128 with MAC filtering.  As I said, normal operation is fine, but I need to restrict the Internet access of a single MAC address. 
  Any assistance would be appreciated.
  Mike

  I'm going nuts with this .. The access restriction is not working on my wrt16n v2.0.02 build 015 May 26, 2009
  I simply have created a policy to block msn.com .. here are the steps I did ...
  1- Name the policy BlockMSN.
  2- Added the MAC address in the list to be blocked ..
  3- Click on Enabled
  4- Type in the URL http://www.msn.com
  5- Type in the key words msn. 
  6- Unchecked everyday and just selected Monday.
  7- Unchecked all day, and selected the time slot between 9:00AM and 9:45AM ...
  8- Click on Save (it was around 9:40 AM on Monday.).
  Tried to open the msn website and rightfully so it was blocked ... I Tried yahoo and cnn and they both  opened ..
  However when the time changed to 9:50 AM, I expected that I would be able to open the MSN site, however that site remained blocked despite the fact I was outside the window of my policy.
  What am I doing wrong ??? also this forum doesn't allow you to upload pictures (I created a screen shot of what I have done but could not upload it.) 
  The

• Access Restriction

  I think Linksys should redesign the Access Restriction in the Router configuration.  I currently have a 3rd party software block some sites at my stepson's computer.  However, I cannot block those website whenever he uses his PSP or his iPod Touch.  It would be nice to be able to have more options to block more web sites.  In addition, the current configuration for access restrictions does not make any sence and is very cumbersome.  For example, I have setup four policies; Sun - Fri from 12:00am to 7:00pm, Sun - Thr (Night) from 9:30pm to 11:55pm, Sat - Sun from 2:00am to 12:00pm, and Sun from 9:30 to 11:55pm.  All those policies are set to Deny internet dureing those hours.  The PROBLEM is that if you set the option to "Deny" is that when he is able to access the internet, I cannot block the harmfull website.  On the other hand, if I change the policiy to "Allow" and block certain web site, then the hours for Sat - Sun gives me errors because of the time.  Because I want to allow internet access Sat and Sun from 12:00pm to 2:00am, the application says that the end time is less than begin time.
  Wireless Router Model: WRT54GS ver 6

  1. You may want to read this thread. There I have pointed out how access restrictions should work if they would work correctly. Unfortunately, on many routers they don't work correctly.
  2. Access restrictions won't help you with your stepson. He'll quickly figure out how to circumvent them either by changing his IP address, MAC address, by using proxy services to avoid the web site blocking, or simply by plugging in a usb wireless adapter and surfing through your neighbor's unprotected or WEP protected wireless router. Access restrictions are very primitive and no match to a child.
  3. You cannot configure policies through midnight. You have to split them into the time before midnight (until 23:55, 11:55pm) and the time after midnight. The 5 minutes between 11:55pm and midnight cannot be filtered. That's the reason why you cannot set policies from 7:00 pm to 2:00 am or from 12:00pm (12:00, noon) to 2:00am next morning.
  4. To have restricted access at all times you have to configure policies for all times of the week. Each policy is either "Deny" denying all internet access in the specified timeframe or "Allow" allowing internet access in the specified timeframe with certain exceptions (url, keyword, and service blocking).
  5. For any time frame not covered by any policy the default policy applies. As I have pointed out in the other thread, the router implementation seem to vary very much in this point and you have to carefully test it what it is on your router: I think often it is an allow all policy, i.e. at times with no policy all traffic is permitted. However, I think some routers/firmwares try to make an "intelligent" guess what the default policy should be depending on the policies defined, for example you define allow policies and the default policy will be deny all. But so far I have found no conclusive description on what they implemented exactly in the router.

• WRT54GX2 Timed Access Restrictions work too well

  I have set three access restrictions applicable to both a laptop (ethernet and wireless MAC addresses) and a desktop.  They all work the first time; however, once they shut off internet access, they don't permit reconnection at the time they should.  The time functions all seem to be set correctly and working properly.  Is it possible that I am somehow "overloading" by having three separate MAC addresses for each access policy?  Should I limimt each policy to one MAC address?  Thanks.

  Yep, I have the same problem.  No answer yet on the thread I opened.  I have 2 policies with 2 MAC addresses from a wireless network listed.  It locks them at the right time, but when the morning comes, they remain locked.  It didn't work the first 2 days, then it worked for 2 days, then it failed this weekend again.  Just logging into the router doesn't solve it.  Either a reboot (pull the power cord and plug it back in) or a re-save of the config (without even making any changes) also makes access available again.
  It has to be a bug.  The config is pretty cut and dried.  Of course, it could be a clock problem if the router doesn't know what time it is!  Not sure exactly how to troubleshoot that one.  I've checked the logs, and they have the right time stamp in them, so I don't think this is what's happening.

• Restricting MDM client access when LDAP is in use

  Hi all,
  I'm struggling a bit with MDM's security concept an hope you can help.
  We're using LDAP integration so we don't need to create all users in MDM. Most users shall use the Portal with MDM iViews to access and maintain data. Very few users shall use rich clients, like Data Manager or Import Manager.
  Some MDM WebServices run in the background of the portal process to automate some tasks, but still with the portal user authentification to make sure that the change tracking / user stamp fields are filled correctly.
  I know that LDAP is either on or off, so if we use it, we must use it for both portal and rich client. This means, everybody with a Data Manager installation and MDMRoles in LDAP can log in to Data Manager and use it according to their role. This, we want to prevent, as Data Manager generally offers way more functionality than we want our endusers to have but which we cannot restrict in the role definition so as not to corrupt our portal integration (e.g. the Web Services need more functional rights than a Data Manager user shall have).
  Of course we will restrict who gets an installation of Data Manager, but this is hardly enough to ensure security policy, if people simply install the client software themselves.
  We already considered a firewall between client and server and only opening the port 20005 for select users (by fixed IP addresses), but that same port is used by Data Manager and Java API (meaning our portal / Web Services), so we would also restrict the portal access.
  Is there a solution to grant portal access for basically everyone and rich client access for a select few while having LDAP in use?
  Thanks a lot in advance!
  Cheers
  Christiane

  Hi Christiane,
  I think you can restrict more functionality of Data Manager for a LDAP User. For this user assign a role which do not have access to create data etc as per the Role assigned to that user of LDAP. I mean the user is able to perform operations in Data Manager according the groups he is member of (Roles in MDM). In MDM Console, You have Role table where you can see Table and Fields and Functions, here you can give access to none for the functions & table and Fields.
  Please refer for more details Page no 4 onwards [Step-by-Step Process to Configure LDAP Support for MDM|http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/8054d5e1-1000-2c10-a09e-a168973f74b5?quicklink=index&overridelayout=true]
  Just check and revert with result.
  Hope it helps..
  Regards,
  Mandeep Saini

• WRT54G2 and WRT54G locks-up (freezes) when blocking web sites using Access Restrictions

  I am convinced that a few Linksys routers such as WRT54G2 and WRT54G have a major issue when blocking web sites using Access Restrictions (Internet Access Policy). After a few hours of internet access by 15 wired users the Linksys locks-up and blocks all internet web access. The only solution is to restart the power on the router.
  We are currently using a Linksys WRT54G2 v1 (firmware 1.0.04). We upgraded the WRT54G2 v1 firmware to the latest 1.0.04 version which did not resolve the issue.  NOTE: We were previosuly using a a Linksys WRT54G v1.1 (firmware 4.21.1) until the power supply blew a week after we started blocking web sites using Access Restrictions (Internet Access Policy).  
  Basically, we have a T1 internet connection and a hub connected to the Linksys router. We are trying to block several web sites such as facebook, myspace, etc. for 15 wired users. We do not use wireless connections.
  This is the 2nd time it happened with 2 different models.
  Please help ASAP.
  Thank you,
  Lance
  (Mod note: Edited post. Some parts off topic.. Thanks!)

  Also,  you have already upgrade/re-flash the firmware of your Linksys Router you need to reset and reconfigure your router from scratch. Press and hold the reset button for 30 seconds...Release the reset button...Unplug the power cable from your router, wait for 30 seconds and re-connect the power cable...Now re-configure your router...

• How to configure CLI/DNIS based access restriction in 5.3 ?

  Hi,
  does anybody have an idea how the setting
  define CLI/DNIS-based access restrictions which is defined in ACS v. 4.2
  can be configured in acs 5.3 ?
  in v. 4 for every user in a group with 40 members  a different CLI is defined for each. How can I configure that in version 5.3 ?
  any help as always much appreciated!

  The equivalebt to NAR functionality can be found at:
  Policy Elements > Session Conditions > Network Conditions > End Station Filters
  Can then define an object with a set of CLI values
  These objects can then be used in policy conditions. So can create a condition with a set of CLI values and then match in authorization policy for values that are included in this set and set authorizations accoridngly
  Not sure if this is your use case but hopefully may be a start

• Access restrictions timing off by 1 hour

  I don't know if anyone else is experiencing this problem.  I have set access restrictions on my WRT610N router and they execute an hour earlier than set.
  I checked the time zone settings, the system clock and all seem correct. I have a rule that is supposed to turn off access to the Internet at 11:55pm. However, the rule gets executed at 10:55pm.
  This was happening on my first WRT610N which was also dropping network connections. So, I returned that unit and got a replacement.
  The new unit does not drop connections but has the same timing problem.  The only solution I have found is to change the time zone to the next one that is 1 hour behind my time zone.
  Please let me know if anyone else has experienced this same situation.

  My ISP is on the same town as I am. The information they are supplying appears to be correct as my WRT54G uses the same information and its rules execute properly.
  I think there is a problem with the WRT610N. My solution is temporary I hope that Linksys will fix this problem.